Outer Web | Explore

Explore >> Select a destination

You are here		blog.opensecurityresearch.com Open Security Research: JSON CSRF with Parameter Padding
\|	\|	www.matuzo.at Web Security Basics: XSS - Manuel Matuzovic	3.8 parsecs away Travel
\|	\|	An introduction to Cross Site Scripting and XSS prevention.	3.8 parsecs away Travel
\|	\|	www.sjoerdlangkemper.nl Cross site request forgery (CSRF)	3.0 parsecs away Travel
\|	\|	This article describes how cross site request forgery works, how sites defend against it and how to bypass these defenses.	3.0 parsecs away Travel
\|	\|	mathieu.fenniak.net Is your Web API susceptible to a CSRF exploit? \| Mathieu Fenniak	2.6 parsecs away Travel
\|	\|	Cross-site request forgery (CSRF) is a type of security exploit where a user's web browser is tricked by a third-party site into performing actions on websites that the user is logged into. It is often a difficult attack to pull off, as it requires a number of factors to line up at once. Protecting against it requires good discipline and good design practices, especially when it comes to protecting Web APIs. Here's a brief example of a fictitious CSRF attack against a bank:	2.6 parsecs away Travel
\|	\|	pentesterlab.com OR 1=1 -- is Dying - PentesterLab's Blog	9.5 parsecs away Travel
\|		This blog post explores the evolution of SQL Injection attacks and why traditional methods, like injecting ' OR 1=1;--, are less effective in modern web applications. It highlights the importance of using secure coding practices, such as parameterized queries and modern password hashing algorithms, to safeguard against these attacks.	9.5 parsecs away Travel